Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 4, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230281 | 7.5 | 危険 | review-script | - | Five Star Review Script の recommend.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-3780 | 2012-12-20 18:52 | 2008-08-26 | Show | GitHub Exploit DB Packet Storm |
| 230282 | 4.3 | 警告 | review-script | - | Five Star Review Script の search/index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-3779 | 2012-12-20 18:52 | 2008-08-26 | Show | GitHub Exploit DB Packet Storm |
| 230283 | 7.5 | 危険 | simasy | - | Simasy CMS の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-3774 | 2012-12-20 18:52 | 2008-08-22 | Show | GitHub Exploit DB Packet Storm |
| 230284 | 4.3 | 警告 | vBulletin Solutions, Inc. | - | vBulletin におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-3773 | 2012-12-20 18:52 | 2008-08-18 | Show | GitHub Exploit DB Packet Storm |
| 230285 | 7.5 | 危険 | turnkey web tools | - | Turnkey Web Tools SunShop Shopping Cart の class.ajax.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-3768 | 2012-12-20 18:52 | 2008-08-22 | Show | GitHub Exploit DB Packet Storm |
| 230286 | 7.5 | 危険 | smartisoft | - | phpBazar の classified.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-3767 | 2012-12-20 18:52 | 2008-08-22 | Show | GitHub Exploit DB Packet Storm |
| 230287 | 5 | 警告 | realtime internet band rehearsal | - | Realtime Internet llcon におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-3766 | 2012-12-20 18:52 | 2008-08-22 | Show | GitHub Exploit DB Packet Storm |
| 230288 | 7.5 | 危険 | turnkey web tools | - | Turnkey PHP Live Helper の globalsoff.php における任意の PHP コードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-3764 | 2012-12-20 18:52 | 2008-08-21 | Show | GitHub Exploit DB Packet Storm |
| 230289 | 6.8 | 警告 | turnkey web tools | - | Turnkey PHP Live Helper の libsecure.php における db config ファイルに関連する任意の変数を上書きされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-3763 | 2012-12-20 18:52 | 2008-08-21 | Show | GitHub Exploit DB Packet Storm |
| 230290 | 7.5 | 危険 | turnkey web tools | - | Turnkey PHP Live Helper の onlinestatus_html.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-3762 | 2012-12-20 18:52 | 2008-08-21 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 4, 2026, 4:17 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 208921 | 8.8 |
HIGH
Adjacent |
netgear |
srk60_firmware srr60_firmware srs60_firmware |
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects SRK60 before 2.5.3.110, SRR60 before 2.5.3.110, and SRS60 before 2.5.3.110. |
CWE-77
Command Injection |
CVE-2020-26920 | 2024-11-21 14:20 | 2020-10-9 | Show | GitHub Exploit DB Packet Storm |
| 208922 | 9.8 |
CRITICAL
Network |
netgear | jgs516pe_firmware | NETGEAR JGS516PE devices before 2.6.0.43 are affected by lack of access control at the function level. |
NVD-CWE-Other
|
CVE-2020-26919 | 2024-11-21 14:20 | 2020-10-9 | Show | GitHub Exploit DB Packet Storm |
| 208923 | 4.8 |
MEDIUM
Network |
netgear |
ex7000_firmware r6250_firmware r6400_firmware r6400v2_firmware r6700v3_firmware r7100lg_firmware r7300dst_firmware r7900_firmware r8300_firmware r8500_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects EX7000 before 1.0.1.78, R6250 before 1.0.4.34, R6400 before 1.0.1.46, R6400v2 before 1.0.2.66, R6700v3 before 1.0.2.66, R7100LG before… |
CWE-79
Cross-site Scripting |
CVE-2020-26918 | 2024-11-21 14:20 | 2020-10-9 | Show | GitHub Exploit DB Packet Storm |
| 208924 | 4.8 |
MEDIUM
Network |
netgear |
ex7000_firmware r6250_firmware r6400_firmware r6400v2_firmware r7100lg_firmware r7300dst_firmware r7900_firmware r8300_firmware r8500_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects EX7000 before 1.0.1.78, R6250 before 1.0.4.34, R6400 before 1.0.1.46, R6400v2 before 1.0.2.66, R7100LG before 1.0.0.50, R7300DST befor… |
CWE-79
Cross-site Scripting |
CVE-2020-26917 | 2024-11-21 14:20 | 2020-10-9 | Show | GitHub Exploit DB Packet Storm |
| 208925 | 6.8 |
MEDIUM
Adjacent |
netgear |
cbr40_firmware rbk752_firmware rbr750_firmware rbs750_firmware rbk852_firmware rbr850_firmware rbs850_firmware |
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects CBR40 before 2.5.0.10, RBK752 before 3.2.15.25, RBR750 before 3.2.15.25, RBS750 before 3.2.15.25, RBK8… |
CWE-77
Command Injection |
CVE-2020-26910 | 2024-11-21 14:20 | 2020-10-9 | Show | GitHub Exploit DB Packet Storm |
| 208926 | 8.8 |
HIGH
Adjacent |
netgear |
d7800_firmware r7500v2_firmware |
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D7800 before 1.0.1.58 and R7500v2 before 1.0.3.48. |
CWE-77
Command Injection |
CVE-2020-26909 | 2024-11-21 14:20 | 2020-10-9 | Show | GitHub Exploit DB Packet Storm |
| 208927 | 8.8 |
HIGH
Adjacent |
netgear |
rbk852_firmware rbr850_firmware rbs850_firmware |
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK852 before 3.2.16.6, RBR850 before 3.2.16.6, and RBS850 before 3.2.16.6. |
CWE-77
Command Injection |
CVE-2020-26907 | 2024-11-21 14:20 | 2020-10-9 | Show | GitHub Exploit DB Packet Storm |
| 208928 | 6.3 |
MEDIUM
Adjacent |
netgear |
d6200_firmware d7000_firmware jr6150_firmware r6020_firmware r6050_firmware r6080_firmware r6120_firmware r6220_firmware r6260_firmware r6700v2_firmware r6800_firmware
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, JR6150 before 1.0.1.24, R6020 before 1.0.0.42, R6050 …
|
NVD-CWE-Other
|
CVE-2020-26916
|
2024-11-21 14:20 |
2020-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 208929 | 4.8 |
MEDIUM
Network |
netgear |
d7800_firmware r7500v2_firmware r7800_firmware r8900_firmware rax120_firmware rbk50_firmware rbr50_firmware rbs50_firmware xr500_firmware xr700_firmware r9000_firmware |
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0… |
CWE-79
Cross-site Scripting |
CVE-2020-26915 | 2024-11-21 14:20 | 2020-10-9 | Show | GitHub Exploit DB Packet Storm |
| 208930 | 7.1 |
HIGH
Adjacent |
netgear |
d6200_firmware d7000_firmware jr6150_firmware r6020_firmware r6050_firmware r6080_firmware r6120_firmware r6220_firmware r6260_firmware r6700v2_firmware r6800_firmware
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, JR6150 before 1.0.1.24, R6020 before 1.0.0.42, R6050 be…
|
CWE-77
|
Command Injection
CVE-2020-26914
|
2024-11-21 14:20 |
2020-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|